$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft File: Alr-kZVIIEnyUJPriYEVxr03FEg.mft (raw, json) Hash identifier: 7rSnB9DkUw9aCTjfZV3b3ayjBPf5pfy3/O2vWGX2u/0= Subject key identifier: 75:1C:90:0C:4C:B5:7A:9C:A0:A5:13:1D:9B:28:53:84:53:78:5E:BD Authority key identifier: 02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 Certificate issuer: /CN=A91BA044/serialNumber=025AFE9195482049F25093EB898115C6BD371448 Certificate serial: 02B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft Manifest number: 02B3 Signing time: Sat 23 Aug 2025 01:43:41 +0000 Manifest this update: Sat 23 Aug 2025 01:43:41 +0000 Manifest next update: Sat 30 Aug 2025 01:43:41 +0000 Files and hashes: 1: Alr-kZVIIEnyUJPriYEVxr03FEg.crl (hash: Hns/RKBQwViPfId6C/rZbWtGMIvGz7iR15IkI0nkbiI=) 2: 5CE70ACC074E11ED99CF6642C4F9AE02.roa (hash: u8H4NSNtBcIg5GrlIWnmn+sl29NyMYEZMtRVlCln8c0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:43:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 695 (0x2b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA044, serialNumber=025AFE9195482049F25093EB898115C6BD371448 Validity Not Before: Aug 23 01:43:41 2025 GMT Not After : Aug 30 01:43:41 2025 GMT Subject: CN=68a91ccd-fd26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:6b:1c:8d:2e:91:75:1f:8f:d2:bb:60:4d:ac: d4:98:3f:c2:f0:a0:d2:85:eb:8a:21:7c:dd:53:fd: e1:21:6f:bc:54:86:c1:53:99:13:b6:0d:d8:14:6a: f1:6b:7f:0a:f6:a4:69:46:36:e7:15:85:37:ce:57: 66:49:a8:28:f7:39:44:6f:d0:3e:cb:62:6e:cf:c1: 2d:2e:e0:ea:54:80:03:07:c5:fe:b9:cf:67:f4:ff: 23:f8:b8:13:f1:26:6b:b0:a6:3d:88:7e:c3:89:df: af:df:c3:ad:0d:aa:11:ef:bc:f4:6d:80:ab:ab:79: 09:c2:0a:4d:40:40:03:16:d6:55:34:3e:40:82:84: aa:3c:c0:ac:69:fa:42:26:63:6d:5c:74:9b:02:f8: e3:80:f9:d4:e0:6a:ad:08:a2:8b:b6:4d:e7:36:11: 37:da:50:7e:cf:59:fb:84:06:01:1a:72:36:0b:13: 9e:52:20:ca:3e:f4:ca:c2:3f:b7:25:cb:13:b2:43: 7c:f0:67:6f:ed:c0:5a:3a:f7:d6:45:cd:3c:4a:cf: 38:83:31:c0:44:16:fd:4a:82:1b:02:b3:4f:0c:d4: 80:34:f7:a4:27:df:69:5e:00:51:a7:18:05:9d:6a: 7f:67:40:1f:57:54:a6:40:d2:fd:4a:c1:2b:af:ca: 0b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:1C:90:0C:4C:B5:7A:9C:A0:A5:13:1D:9B:28:53:84:53:78:5E:BD X509v3 Authority Key Identifier: keyid:02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:f9:ab:65:b3:86:85:06:ba:fc:3c:9b:40:78:d4:3c:a4:3f: 27:d3:83:0a:4e:7f:37:2d:dc:5c:17:dc:9c:e5:19:b1:5d:e2: ff:60:21:fc:91:3f:79:c5:6a:f2:80:87:b3:b7:51:76:c0:f1: 38:df:df:43:d1:de:9e:03:1b:1e:7d:12:31:82:ae:1a:b1:6b: a2:63:ca:63:69:49:8a:dc:97:59:aa:53:2a:04:21:97:e5:71: 29:20:ec:40:26:77:ec:ec:88:e8:05:8d:50:dd:b7:e4:cd:c6: c6:73:c5:0e:30:74:15:88:59:85:80:80:64:b5:d1:b8:1c:47: bc:db:c3:b0:ee:4f:c1:cb:d6:59:3a:5a:77:88:8c:d7:07:aa: 99:82:e3:5d:bb:35:f1:7b:5e:a4:ed:b6:ee:f6:ef:66:a0:d1: 16:f0:9e:86:31:9b:72:e1:99:df:88:46:cb:03:a0:f0:a8:6a: 09:af:71:0c:46:db:35:92:d1:03:29:35:3f:3b:41:21:92:8f: 2b:07:be:f7:09:77:03:0f:ea:db:0b:5d:41:70:ac:fb:93:de: fe:66:9d:8c:ae:2b:65:a2:ff:ee:75:c1:55:14:d6:ab:48:bd: 92:ce:1b:a0:03:11:b5:72:e5:7f:c5:13:a5:76:6a:7f:a3:f9: 27:6d:e0:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwNDQxMTAvBgNVBAUTKDAyNUFGRTkxOTU0ODIwNDlGMjUwOTNFQjg5ODExNUM2 QkQzNzE0NDgwHhcNMjUwODIzMDE0MzQxWhcNMjUwODMwMDE0MzQxWjAYMRYwFAYD VQQDEw02OGE5MWNjZC1mZDI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6WscjS6RdR+P0rtgTazUmD/C8KDSheuKIXzdU/3hIW+8VIbBU5kTtg3YFGrx a38K9qRpRjbnFYU3zldmSago9zlEb9A+y2Juz8EtLuDqVIADB8X+uc9n9P8j+LgT 8SZrsKY9iH7Did+v38OtDaoR77z0bYCrq3kJwgpNQEADFtZVND5AgoSqPMCsafpC JmNtXHSbAvjjgPnU4GqtCKKLtk3nNhE32lB+z1n7hAYBGnI2CxOeUiDKPvTKwj+3 JcsTskN88Gdv7cBaOvfWRc08Ss84gzHARBb9SoIbArNPDNSANPekJ99pXgBRpxgF nWp/Z0AfV1SmQNL9SsErr8oLAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHUckAxM tXqcoKUTHZsoU4RTeF69MB8GA1UdIwQYMBaAFAJa/pGVSCBJ8lCT64mBFca9NxRI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTA0NC9BN0M3RTY1QTA3 NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlFbnlVSlByaVlFVnhyMDNG RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Fsci1rWlZJSUVueVVKUHJpWUVWeHIwM0ZFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTA0NC9BN0M3RTY1QTA3NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlF bnlVSlByaVlFVnhyMDNGRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW+atls4aFBrr8PJtAeNQ8pD8n04MKTn83LdxcF9yc5RmxXeL/YCH8 kT95xWrygIezt1F2wPE4399D0d6eAxsefRIxgq4asWuiY8pjaUmK3JdZqlMqBCGX 5XEpIOxAJnfs7IjoBY1Q3bfkzcbGc8UOMHQViFmFgIBktdG4HEe828Ow7k/By9ZZ Olp3iIzXB6qZguNduzXxe16k7bbu9u9moNEW8J6GMZty4ZnfiEbLA6DwqGoJr3EM Rts1ktEDKTU/O0Ehko8rB773CXcDD+rbC11BcKz7k97+Zp2Mritlov/udcFVFNar SL2SzhugAxG1cuV/xROldmp/o/knbeCc -----END CERTIFICATE-----Generated at Sun Aug 24 00:04:25 2025 by rpki-client